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(57) A method and apparatus for secure data trans- 
mission via network. Transmission side transmits proc- 
essed data (DB), second signed data (SB, 740) ob- 
tained by applying one-way function to merged data of 
the processed data (DB) and first signed data of an orig- 
inal image and ciphering the output of the one-way func- 
tion with transmission side secret key, and ciphered 
signed data (SAE) obtained by ciphering the first signed 
data with reception side private key. Data reception side 
enciphers received ciphered signed data (SAE 1 ) with re- 
ception side secret key to obtain third signed data (SA') t 
applies one-way function to merged data (DC) of re- 
ceived processed data (DB') and the third signed data 
(SA'), enciphers received second signed data (SB') with 
transmission side private key (KDB), compares result 
obtained by applying the one-way function to the 
merged data with result obtained by enciphering the 
second signed data for data valification. 
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Description 

BACKGROUND OF THE INVENTION 

[0001] The present invention relates to security in ex- 
changing data via a network, and particularly relates to 
security in transmitting an original image or processed 
data of a partial image or the like produced by working 
the original image when an image obtained by scanning 
a forrn, chit, slip or the like is electronically exchanged 
via a network. 

[0002] As technology relating to security in data trans- 
mission, for example, there has been known a digital 
signature disclosed, for example, in S. Tujii and M. 
Kasahara: Cryptography and Information Security, p. 
127-139, SHOKODO (1999). 

SUMMARY OF THE INVENTION 

[0003] Fig. 7 is a block diagram showing an example 
of the configuration of a data transmission apparatus for 
transmitting data obtained by working or processing an 
input image of a form or the like. 

[0004] When data is transmitted between a branch of- 
fice A 1 000 and a processing center 1 005 connected via 
a network 1 01 0 as shown in Fig. 7, a data reception side 
can verify that received data was transmitted from a 
proper transmission side, and can verify that the re- 
ceived data has not been substituted. Such verification 
is realized by private (public) key cryptography using a 
secret key and a private (public) key produced by the 
transmission side. 

[0005] Fig. 2A shows an example of processing flow 
of data transmission using a digital signature in the data 
transmission apparatus shown in Fig. 7. Object data DA 
to be transmitted is obtained (Step 200). A hash function 
is applied to the object data DA (Step 205). The output 
of the hash function is ciphered with a secret key KEA 
of the data transmission side so that signed data SA is 
produced (Step 210). The data DA and SA are transmit- 
ted to the data reception side (Step 215). On the other 
hand, Fig. 2B shows an example of processing flow for 
verifying the validity of the transmitted data. Object data 
DA' and signed data SA' are obtained (Step 220). A hash 
function is applied to the data DA 1 (Step 225). The 
signed data SA' is enciphered with a private key KDA 
distributed in advance (Step 230). Then, the results of 
Step 225 and Step 230 are compared (Step 235), and 
the validity of the data is verified on the basis of the result 
of the comparison (Step 240). Here, it is concluded that 
there has been no illegal act if the compared data are 
coincident with each other, and there was some illegal 
act if they are not coincident with each other. 
[000£] However, there is no way to verify whether the 
processed data was produced from the original image 
or not and carry out the aforementioned verification at 
the same time. Further, if the data has been substituted, 
there is no way to find the original image. 



[0007] In governmental or non-governmental offices 
dealing with a vast volume of forms, slips, chits or the 
like, there are needs to convert paper media into digital 
media and connect deployed centers and branch offices 
5 to use the digital media to thereby speed up services. 
To satisfy such needs, there has appeared a configura- 
tion of service in which paper media are converted into 
images and the images are applied to a work flow. In 
such a configuration, processed data such as partial im- 
10 ages required for services are managed on account of 
efficiency in data transmission or the like. Such partial 
images of a medical/ insurance document as shown in 
Fig. 6, of original images, partial images required for 
services, for example, a reference number, a consulta- 
*5 tion month, a medical code, a room number, a birth date, 
etc. are cut out or picked up and transmitted from the 
branch office A 1000 to the processing center 1005 via 
the network 1010 in Fig. 7. If the whole of the original 
image is to be transmitted, the volume of data becomes 
20 large. In addition, if the original image is displayed, there 
is a fear that information involving privacy leaks out. 
Therefore, required partial images are cut out or picked 
up and transmitted from the branch office A to the 
processing center. Operators engage in data input serv- 
es ice while viewing the displayed partial images. 

[0008] However, when data is transmitted via a net- 
work, original images or processed data flowing on the 
network may be eavesdropped or listened in or illegally 
substituted partially or wholly. Further, illegal transac- 
30 tions may be achieved by impersonation. It is desired to 
prevent such problems. In order to prevent such prob- 
lems, it is necessary to verify an illegal act of substitution 
based on impersonation. 

[0009] As a method of the verification, a digital signa- 
ls ture based on private key cryptography has been known 
as described above. However, if the original image or 
the processed data per se is listened in and a secret key 
used in an image input portion or a processed data 
processing portion is stolen, the eavesdropper or listen- 
40 er-in may substitute the original image or the processed 
data easily or transmit data to a transmission line by im- 
personation. Thus, there arises a problem that the data 
reception side cannot detect such an illegal act and may 
be deceived and make an inappropriate process. There- 
45 fore, it is desired to provide a method for verifying sub- 
stitution of the original image or the processed data 
based on impersonation while verifying whether the 
processed data was produced from the original image 
or not and further for finding the original image easily if 
50 it is concluded that the original image has been substi- 
tuted. 

[0010] In addition, if the transmitted data has been 
substituted, it is necessary to find the substituted origi- 
nal image in early stages and extract necessary infor- 
ms mation again. 

[0011] It is an object of the present invention to pro- 
vide a method in which in the case where an original 
image or processed data was listened in and a secret 
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key used in a data input portion or in a processed data 
processing portion was stolen, even if the listener-in 
transmits substituted data of the original image or the 
processed data by impersonation, the data reception 
side judges such an illegal act and verifies whether re- 
ceived data was produced from the original image or 
not. 

[0012] It is another object of the present invention to 
provide a method in which the data reception side veri- 
fies whether the processed data is produced from the 
original data or not, and if the data reception side finds 
that the received data is substituted image, the data re- 
ception side obtains the original image quickly. 
[0013] In order to attain the foregoing objects, in a da- 
ta transmission method according to an aspect of the 
present invention, a data transmission side merges 
processed data DB obtained by working or processing 
an original image DA with signed data SA obtained by 
applying a digital signature to the original image. Then, 
the data transmission side applies a one-way function 
to the merged data, and ciphers the output of the one- 
way function with a secret key of the data transmission 
side so as to obtain signed data SB. Then, the signed 
data SA obtained by applying a digital signature to the 
original image DA is ciphered with a private key of a data 
reception side so that ciphered signed data SAE is ob- 
tained. Then, the data transmission side transmits the 
processed data DB, the signed data SB and the ci- 
phered signed data SAE to the data reception side. 
[0014] On the other hand, the data reception side ob- 
tains ciphered signed data SAE' and enciphers the ci- 
phered signed data SAE* with a secret key of the data 
reception side to thereby obtain signed data SA 1 . The 
data reception side merges obtained processed data 
DB 1 with the signed data SA\ and applies a one-way 
function to the merged data. Then, the data reception 
side enciphers obtained signed data SB* with a private 
key of the data transmission side, and compares the out- 
put of the one-way function applied to the merged data 
obtained by merging the processed data DB' and the 
signed data SA" with the result of enciphering the signed 
data SB 1 with a private key of the data transmission side. 
Thus, data validity is verified. 

[0015] In the date transmission method according to 
another aspect of the present invention, the data trans- 
mission side merges an original image DA with signed 
data SA obtained by applying a digital signature to the 
original image. Then, the data transmission side applies 
a one-way function to the merged data, and ciphers the 
output of the one-way function with a secret key of the 
data transmission side so as to obtain signed data SB. 
The signed data obtained by applying a digital signature 
to the original image DA is ciphered with a private key 
of a data reception side so that ciphered signed data 
SAE is obtained. Then, the data transmission side trans- 
mits the original image DA, the signed data SB and the 
ciphered signed data SAE to the data reception side. 
[001 6] On the other hand, the data reception side ob- 



tains ciphered signed data SAE' and enciphers the ci- 
phered signed data SAE' with a secret key of the data 
reception side to thereby obtain signed data SA 1 . The 
data reception side merges obtained original image DA 1 

s with the signed data SA\ and applies a one-way function 
to the merged data. Then, the data reception side enci- 
phers obtained signed data SB' with a private key of the 
data transmission side, and compares the output of the 
one-way function applied to the merged data obtained 

10 by merging the original image DA* and the signed data 
SA' with the result of enciphering the signed data SB' 
with a private key of the data transmission side. Thus, 
data validity is verified. 

[0017] According to a feature of the present invention, 

15 jn place of the signed data SA obtained by applying a 
digital signature to the original image in the data trans- 
mission apparatus according to the present invention 
described in the first and in the last, signed data ob- 
tained by applying a digital signature to data associated 

20 with the original image may be used. As the data asso- 
ciated with the original image data, for example, the vol- 
ume of data of the original image, the number of black 
pixels included in a binarized image obtained by 
processing the original image, and so on, may be used. 

25 [0018] Another feature of the present invention is as 
follows. When disagreement is given as the result of 
comparison of the output of the one-way function ap- 
plied to the merged data with the result of enciphering 
the signed data SB' with the private key of the data trans- 

30 mission side in the data transmission apparatus accord- 
ing to the present invention described in the first and in 
the last: 

the data reception side transmits the signed data 
35 SA' obtained by enciphering the received ciphered 
signed data SAE' with the secret key of the data re- 
ception side to the data transmission side; and 
the data transmission side searches for an original 
image corresponding to signed data coinciding with 
40 the signed data SA* sent to the data transmission 
side. 

[001 9] According to a further aspect of the present in- 
vention, a data transmission apparatus comprises: 

45 

first ciphering means for receiving an electronic im- 
age of an original image and a first secret key as 
inputs, and outputting a first digital signature ob- 
tained by ciphering the electronic image with the 
50 first secret key; 

processing means for receiving the electronic im- 
age as input, and outputting a partial or processed 
image of the electronic image; 
second ciphering means for receiving the partial or 
55 processed image, the first digital signature and a 
second secret key as inputs, merging the partial or 
processed image and the first digital signature, ci- 
phering obtained merged data with the second se- 
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cret key, and outputting an obtained second digital 
signature; 

third ciphering means for receiving the first digital 
signature and a private key as inputs, and obtaining 
ciphered data of the first digital signature with the 
private key; and 

transmitting means for transmitting the partial or 
processed image, the second digital signature, and 
the ciphered data of the first signature to an external 
data channel. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0020] The forgoing and other objects, features and 
advantages of the invention will be apparent from the 
following more detailed description of the preferred em- 
bodiments of the invention as illustrated in the accom- 
panying drawings wherein: 

Figs. 1 A and 1 B are flow charts showing data trans- 
mission side processing and data reception side 
processing in a data transmission method accord- 
ing to an embodiment of the present invention, re- 
spectively; 

Figs. 2A and 2B are flow charts showing data trans- 
mission side processing and data reception side 
processing in a data transmission method using a 
digital signature in a data transmission apparatus 
as shown in Fig. 7, respectively; 
Fig. 3 is a flow chart showing processing on the data 
transmission side in a data transmission method ac- 
cording to another embodiment of the present in- 
vention in the case where there is a processing 
module of producing a plurality of partial images; 
Fig. 4 is a flow chart showing processing on the data 
reception side in a data transmission method ac- 
cording to another embodiment of the present in- 
vention in the case where there is a processing 
module of producing a plurality of partial images; 
Fig. 5 is a view showing a flow from data transmis- 
sion to data reception about an original image, proc- 
essed data, signed data, etc. useful for description 
of the embodiment of the present invention; 
Fig. 6 is a view showing examples of necessary par- 
tial images in an original image which is an object 
to be worked; 

Fig. 7 is a block diagram showing an example of 
configuration of a transmission system to which the 
present invention is applied; and 
Figs. 8A and 8B are flow charts showing data trans- 
mission side processing and data reception side 
processing in a data transmission method accord- 
ing to another embodiment of the present invention, 
respectively. 

DESCRIPTION OF THE EMBODIMENTS 

[0021] The present invention utilizes a digital signa- 



ture based on private key cryptography. The principle 
will be described with reference to Fig. 5 and Figs. 1A 
and 1 B. In a rough flow of data, an original image 720 
is obtained by an image input operation at an image in- 

s put portion 700 of a branch office 780, and is worked or 
processed at a processing operation portion 705. Then, 
processed data 730 is transmitted from a data transmis- 
sion server 785 to a service process portion of a 
processing center 71 0 via networks 750 and 71 5 so as 

10 to be subjected to a service. In this flow, if listen-in is 
carried out on the networks and a secret key used in the 
image input operation or the processing operation is sto- 
len, there arises a problem of data substitution by im- 
personation. 

*5 [0022] Next, in order to explain the principle, descrip- 
tion will be made about data to be dealt with. Reference 
numeral 720 represents an original image of information 
written on a recording medium such as paper read out 
by scanning the recording medium with a scanner 704; 

20 725, signed data obtained by a digital signature using a 
secret key used in the image input operation; 730, proc- 
essed data processed or worked in the processing op- 
eration portion; 735, the signed data 725; 740, signed 
data obtained by merging the processed data 730 and 

25 the signed data 735 to thereby form one unit of merged 
data and applying a digital signature to the merged data 
with a secret key of the processing operation portion; 
745, data obtained by ciphering the signed data 735 with 
a private key used in the service process of the process- 

30 ing center 710; 755, a data group to be transmitted to 
the processing center 71 0, constituted by the data 730, 
745 and 740. Further, reference numeral 760 represents 
data including data 765 obtained by listening in to the 
data group 755 on the network 750 and substituting the 

35 data 730, and signed data 770 obtained by merging the 
data 765 and 745 to thereby form a block of merged data 
and applying a digital signature to the merged data with 
the secret key stolen from the processing operation por- 
tion. Reference numeral 775 represents substituted da- 

40 ta sent to and received by the processing center 71 0 by 
impersonation. 

[0023] Conventionally, signed data obtained by a dig- 
ital signature using the processed data 730 and the se- 
cret key in the processing operation unit is used. There- 

45 fore, a listener-in who stole the secret key in the 
processing operation portion can substitute the proc- 
essed data easily, make up the signed data and transmit 
those data to the processing center while impersonating 
the processing portion. However, the data reception 

50 side cannot verify such an illegal act. 

[0024] Fig. 1A is a flow of processing on the data 
transmission side in Fig. 5. Object data DA which is an 
original image and processing information are obtained 
(Step 100). Here, for example, when a partial image is 

55 dealt with, the processing information means coordi- 
nates of a partial area to be dealt with. Then, processing 
with the object data DA and the processing information 
is performed (Step 105), and a digital signature is ap- 
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plied to the object data DA so that signed data SA is 
obtained (Step 107). The signed data SA is ciphered 
with a private key KDC used in the service process of 
the data reception side so that ciphered signed data 
SAE is obtained (Step 110). Next, the processed data 
DB and the signed data SA are merged to form a block 
of data DC (Step 115). A hash function is applied to the 
merged data DC (Step 120), and the output of the hash 
function is ciphered with a secret key used in the 
processing operation portion so that signed data SB is 
obtained (Step 125). The data DB, SB and SAE are 
transmitted to the data reception side (Step 130). Here, 
the data DB corresponds to the data 730 in Fig. 5; SB, 
the data 740; and SAE, the data 745. 
[0025] On the other hand, Fig. 1 B is a flow of process- 
ing carried out on the data reception side in Fig. 5. Here, 
received processed data DB', signed data SB' and ci- 
phered signed data SAE' are obtained (Step 135). The 
ciphered signed data SAE' is enciphered with a secret 
key KEC of the service process portion of the data re- 
ception side so that data SA' is obtained (Step 140). The 
data DB' and SA* are merged to form a block of data 
(Step 145), and a hash function is applied to merged 
data DC (Step 150). Then, the signed data SB' is enci- 
phered with a private key KDB of the processing oper- 
ation portion of the data transmission side (Step 155). 
The results of Step 150 and 155 are compared (Step 
1 60). On the basis of the result of the comparison, the 
data reception side can verify whether an illegal act was 
effected or not (Step 1 65). 

[0026] The important point in this processing is the 
fact that one who can encipher the ciphered signed data 
SAE' is the data reception side because the data recep- 
tion side has a secret key thereof. Even if a listener-in 
substitutes data or remakes signed data with the sub- 
stituted data and the ciphered signed data, the results 
in Step 160 cannot agree with each other. 
[0027] As is understood from the aforementioned 
flow, the ciphered signed data is not always required to 
be signed data of the original image, but it may be infor- 
mation relating to the original image, or the like. Exam- 
ples of the information relating to the original image in- 
clude: the volume of data of the original image; the 
number of black pixels included in a binarized image ob- 
tained by processing the original image; and so on. 
[0028] The verification as to whether the processed 
data was produced from the original image or not is ef- 
fected by comparing the values obtained by Steps 150 
and 1 55 in Fig. 1 B. If both the values are equal to each 
other, it is proved that the processed data was produced 
from the original image without any illegal act based on 
listen-in. Conversely, If the values are different from 
each other, there is a possibility that the data has been 
substituted. In such a case, it may be considered that 
the identification (ID) of the original image cannot be 
found from the substituted data. In such a case, the ci- 
phered signed data transmitted to the data reception 
side is enciphered on the data reception side, and the 



enciphered signed data is sent to the data transmission 
side. The data transmission side searches for data- 
transmission-side signed data of the original image co- 
inciding with the enciphered signed data. Thus, the orig- 

5 jnal image can be found out. 

[0029] Another embodiment will be described with ref- 
erence to Fig. 3 about the processing operation in which 
a plurality of partial images are produced. 
[0030] In this case, Steps 300 to 31 0 are the same as 

10 steps 1 00 to 1 1 0 in Fig. 1 A. Data processing from Step 
320 to Step 335 branching from Step 315, which are ex- 
ecuted for each of the partial images, are the same as 
that from Step 1 15 to Step 130 in Fig. 1 A. The process- 
ing flow of Fig. 3 is different from Fig. 1A in that Step 

is 315 executes the data processing repeatedly several 
times. 

[0031] Fig. 4 is a flow of processing for verification 
about transmitted data, which flow corresponds to the 
processing in Fig. 3. In the same manner as on the data 

20 transmission side, Steps 400 to 405 in Fig. 4 are the 
same as Steps 135 to 140 in Fig. 1B. Data processing 
from Step 415 to Step 435 branching from Step 410, 
which are executed for each of the partial images, are 
the same as that from Step 145 to Step 1 65 in Fig. 1 B. 

25 The processing flow of Fig. 4 is different from Fig. 1 B in 
that Step 41 0 executes the data processing repeatedly 
several times. 

[0032] Thus, the partial images can be transmitted to 
the data reception side without being extracted and sub- 

30 jected to any illegal act based on listen-in. In addition, 
such an illegal act based on listen-in can be verified. 
[0033] Although description was made above about 
security against listen-in on the transmission of proc- 
essed data, it is possible to prevent an attack on the 

35 original image from a listener-in in the same manner as 
the processed data. 

[0034] Description will be made below about a data 
transmission method according to another embodiment 
of the present invention which can verify an illegal act 

40 of a listener-in to the original image. 

[0035] Figs. 8A and 8B show processing flows when 
object data DA which is an original image is exchanged 
between a data transmission side and a data reception 
side. Steps similar to those in Figs. 1A and 1B are ref- 

45 erenced correspondingly. 

[0036] Fig. 8A is a flow of processing carried out on 
the data transmission side. A digital signature is applied 
to the object data DA which is an original image, so that 
signed data SA is obtained (Step 107). The signed data 

50 SA is ciphered with a private key KDC of a service proc- 
ess portion of the data reception side, so that ciphered 
signed data SAE is obtained (Step 110). Next, the object 
data DA and the signed data SA are merged to form a 
block of data (Step 115*). A hash function is applied to 

55 merged data DC with a secret key of the data transmis- 
sion side so that signed data SB is obtained (Step 125). 
The data DA, SB and SAE are transmitted to the data 
reception side (Step 130). 
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[0037] On the other hand, Fig. 8B is a flow of process- 
ing carried out on the data reception side. Here, object 
data DA', signed data SB' and ciphered signed data 
SAE' are received (Step 135'). The ciphered signed data 
SAE' is enciphered with a secret key KEC of the service s 
process portion of the data reception side so that data 
SA' is obtained (Step 140). The data DB' and SA' are 
merged to form a block of data (Step 1 45*), and a hash 
function is applied to merged data DC (Step 1 50). Then, 
the signed data SB' is enciphered with a private key KDB io 
of the data transmission side (Step 155). The results of 
Steps 150 and 155 are compared (Step 160). On the 
basis of the result of the comparison, it is possible to 
verify whether an illegal act was effected or not (Step 
165). 15 
[0038] Similarly to the embodiment of Figs. 1A and 
1 B, the important point in this processing is that one who 
can encipher the ciphered signed data SAE* is the data 
reception side because the data reception side has a 
secret key thereof. Even if a listener-in substitutes data 20 
or remakes signed data with the substituted data and 
the ciphered signed data, the results in Step 1 60 cannot 
agree with each other. Also in this embodiment, the ci- 
phered signed data is not always necessary to be signed 
data of the original image, but it may be information re- 25 
lating to the original image, or the like. Thus, also in this 
embodiment, advantageous effects similar to those in 
the embodiment of Figs. 1A and 1B can be obtained. 
[0039] Conventionally, when data produced by a dig- 
ital signature is listened in on a network and a secret 30 
key used therefor is stolen, there has arisen a problem 
that the listener-in may substitute the data and transmit 
the substituted data by impersonation so that wrongful 
processing is carried out on the data reception side. 
However, according to the aforementioned embodi- 35 
ments, such a data substitution or such an illegal act 
based on impersonation can be verified on the data re- 
ception side. 

[0040] While the invention has been particularly de- 
scribed and shown with reference to the preferred em- 40 
bodiments thereof, it will be understood by those skilled 
in the art that various changes in form and detail and 
omissions may be made therein without departing from 
the scope of the invention. For example, although the 
above description is aimed at the case where images *s 
obtained by scanning paper and thereafter processing 
are exchanged via networks, the present invention is not 
limited to such a case. For example, it is also applicable 
to the case where forms or the like are stored in record- 
ing media such as magnetic disks, optical disks, semi- so 
conductor memories, or the like, and images obtained 
by reading out original images from such recording me- 
dia and thereafter processing the original images are ex- 
changed via networks. 



Claims 

1 . A method for making an electronic exchange of an 
image obtained by working an original image of writ- 
ten information read out of a recording medium be- 
tween a data transmission side and a data reception 
side via a network, said method comprising: 

a data transmission step on said data transmis- 
sion side; and 

a data reception step on said data reception 
side; 

said data transmission step including: 

a first step (1 05) of working said original image 
(DA, 720) so as to produce worked data (DB, 
730); 

a second step (107) of applying a digital signa- 
ture to said original image so as to produce first 
signed data (SA, 725); 

a third step (110) of ciphering said first signed 
data (SA, 725) with a private key of said data 
reception side so as to produce a ciphered 
signed data (SAE, 745); 
a fourth step (120, 125) of merging said worked 
data (DB, 730) and said first signed data (SA, 
725), applying a one-way function to obtained 
merged data, and ciphering an output of said 
one-way function with a secret key of said data 
transmission side so as to obtain second 
signed data (SB, 740); and 
a fifth step (1 30) of transmitting said worked da- 
ta (DB, 730), said second signed data (SB, 740) 
and said ciphered signed data (SAE, 745) to 
said data reception side; 

said data reception step including: 

a sixth step ( 1 35) of obtaining said worked data 
(DB'), said second signed data (SB') and said 
ciphered signed data (SAE 1 ); 
a seventh step (140) of enciphering said ob- 
tained ciphered signed data (SAE') with a se- 
cret key of said data reception side so as to ob- 
tain third signed data (SA'); 
an eighth step (150) of merging said obtained 
worked data (DB') and said third signed data 
(SA') and applying a one-way function to ob- 
tained merged data (DC); 
a ninth step (155) of enciphering said received 
second signed data (SB 1 ) with a private key 
(KDB) of said data transmission side; and 
a tenth step (160) of comparing results of said 
eighth and ninth steps so as to verify data va- 
lidity. 

2. A method according to Claim 1 , wherein said re- 
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cording medium including paper, and said original 
image is an image of said written information on 
said paper read out by scanning said paper. 

3. A method according to Claim 1 , wherein said written 
information includes a string of characters. 

4. A method according to Claim 1 , wherein said first 
signed data in said second step includes signed da- 
ta obtained by applying a digital signature to data 
relating to said original image. 

5. A method according to Claim 4, wherein said data 
relating to said original image includes a volume of 
data of said original image. 

6. A method according to Claim 4, wherein said data 
relating to said original image includes a number of 
black pixels included in a binarized image obtained 
by image-processing said original image. 

7. A method according to Claim 1 , wherein said data 
reception side further sends said third signed data 
(SA') obtained in said seventh step to said data 
transmission side when a comparison result in said 
tenth step exhibits disagreement between outputs 
of said eighth and ninth steps; and 

said data transmission side searches for an 
original image corresponding to signed data coin- 
ciding with said third signed data (SA*) sent to the 
data transmission side. 

8. A method for making an electronic exchange of an 
original image of written information read out of a 
recording medium between a data transmission 
side and a data reception side via a network, com- 
prising: 

a data transmission step; and 
a data reception step; 

said data transmission step including: 

a first step (1 05') of applying digital signature to 
said original image (DA, 720) so as to produce 
first signed data (SA, 725); 
a second step (110) of ciphering said first 
signed data (SA, 725) with a private key of said 
data reception side so as to produce a ciphered 
signed data (SAE, 745); 
a third step (1 25) of merging said original image 
data (DA) and said first signed data (SA, 725), 
applying a one-way function to obtained 
! merged data, and ciphering an output of said 
one-way function with a secret key of said data 
transmission side so as to obtain second 
signed data (SB, 740); and 
a fourth step (130) of transmitting said original 



image data (DA, 730), said second signed data 
(SB, 740) and said ciphered signed data (SAE, 
745) to said data reception side; 

5 said data reception step including: 

a fifth step (135) of obtaining said original im- 
age data (DA*), said second signed data (SB 1 ) 
and said ciphered signed data (SAE 1 ); 
10 a sixth step (140) of enciphering said obtained 

ciphered signed data (SAE 1 ) with a secret key 
of said data reception side so as to obtain third 
signed data (SA'); 

a seventh step (1 50) of merging said obtained 
is original image data (DA 1 ) and said third signed 

data (SA 1 ) and applying a one-way function to 
obtained merged data (DC); 
an eighth step (155) of enciphering said re- 
ceived second signed data (SB 1 ) with a private 
20 key (KDB) of said data transmission side; and 

a ninth step (1 60) of comparing results of said 
steps 8 and 9 so as to confirm data validity. 

9. A method according to Claim 8, wherein said re- 
25 cording medium including paper, and said original 

image is an image of said written information on 
said paper read out by scanning said paper. 

10. A method according to Claim 8, wherein said written 
30 information includes a string of characters. 

11. A method according to Claim 8, wherein said first 
signed data in said first step includes signed data 
obtained by applying a digital signature to data re- 

35 latin g to said original image. 

12. A method according to Claim 1 1 , wherein said data 
relating to said original image includes a volume of 
data of said original image. 

40 

13. A method according to Claim 1 1 , wherein said data 
relating to said original image includes a number of 
black pixels included in a binarized image obtained 
by processing said original image. 

45 

14. A method according to Claim 8, wherein said data 
reception side further sends said third signed data 
(SA 1 ) obtained in said sixth step to said data trans- 
mission side when a comparison result in said ninth 

50 step exhibits disagreement between outputs of said 
seventh and eighth steps; and 

said data transmission side searches for an 
original image corresponding to signed data coin- 
ciding with said third signed data (SA') sent to the 

55 data transmission side. 

15. A data transmission apparatus comprising: 
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first ciphering means (720, 725, 1 07) for receiv- 
ing an electronic image (720) of an original im- 
age and a first secret key as inputs, and output- 
ting a first digital signature (725, 735) obtained 
by ciphering said electronic image with said first 5 
secret key; 

processing means (705, 1 05) for receiving said 
electronic image as input, and outputting a par- 
tial or processed image (730) of said electronic 
image; 10 
second ciphering means (120, 125) for receiv- 
ing said partial or processed image, said first 
digital signature and a second secret key as in- 
puts, merging said partial or processed image 
and said first digital signature, ciphering ob- *5 
tained merged data with said second secret 
key, and outputting an obtained second digital 
signature (740); 

third ciphering means (110) for receiving said 
first digital signature (725, 735) and a private 20 
key as inputs, and obtaining ciphered data 
(745) of said first digital signature with said pri- 
vate key; and 

transmitting means (785) for transmitting said 
partial or processed image (730), said second 25 
digital signature (740), and said ciphered data 
(745) of said first signature (735) to an external 
data channel (750). 

16. A data transmission apparatus according to Claim 30 
15, wherein said first digital signature includes a 
digital signature obtained by ciphering data relating 

to said original image with said first secret key. 

17. A data transmission apparatus according to Claim 35 
1 5, wherein said data relating to said original image 
includes a volume of data of said original image. 

18. A data transmission apparatus according to Claim 

1 5, wherein said data relating to said original image *o 
includes a number of black pixels included in a bi- 
narized image obtained by processing said original 
image. 

19. A data transmission apparatus according to Claim 45 
1 5, further comprising a scanner (705) for scanning 
written paper to thereby produce said electronic im- 
age of said original image. 

50 
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